We have written this data protection declaration to explain to you, in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679, what information we collect, how we use data and what choices you have as a visitor to this website. Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible.
According to the provisions of the GDPR, you are generally entitled to the following rights:
- Right to rectification (Article 16 GDPR)
- Right to erasure (“right to be forgotten”) (Article 17 GDPR)
- Right to restriction of processing (Article 18 GDPR)
- Right to notification – obligation to notify in connection with the rectification or erasure of personal data or the restriction of processing (Article 19 GDPR)
- Right to data portability (Article 20 GDPR)
- Right to object (Article 21 GDPR)
- Right not to be subject to a decision based exclusively on automated processing - including profiling - (Article 22 GDPR)
If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been violated in any way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
Evaluation of visitor behavior
In the following data protection declaration we inform you about whether and how we evaluate data from your visit to this website. The collected data is usually evaluated anonymously and we cannot draw conclusions about your person from your behavior on this website. You can find out more about the options for objecting to this evaluation of visit data in the following privacy policy.
Personal data
Personal data is information that discloses or can disclose the identity of the user. We adhere to the principle of data avoidance. We refrain from collecting personal data as far as possible. Personal data is used exclusively for the establishment of the contract, the content design, implementation or processing of the contractual relationship (Art. 6 I S. 1 b GDPR). In addition, personal data is only processed if we have received your consent to do so (Art. 6 I S. 1 a GDPR) or if it is data whose processing is necessary for our legitimate interests and if the balancing of interests shows that there are no overriding interests, fundamental rights or freedoms on your part that conflict with this (Art. 6 I S. 1 f GDPR). We can use processors to process your personal data, but we will generally not pass the personal data on to third parties beyond this. The data will only be passed on to the shipping company commissioned with the delivery for the purpose of fulfilling the contract, insofar as this is necessary for the delivery of ordered goods. To process payments, the payment data required for this purpose will be passed on to the credit institution commissioned with the payment and, if applicable, the commissioned and selected payment service provider. Your personal data will only be processed within the EU, unless otherwise stated below.
Usage data
When you visit the website, general technical information is collected. This is the IP address used, time, duration of the visit, browser type and, if applicable, the page of origin. For technical reasons, this usage data is recorded in a log file and can be used and stored for the purpose of statistical analysis of this website. This usage data is not linked to your other personal data.
Duration of storage
After the end of the purpose for which the data was collected, we only store your personal data for as long as this is necessary due to legal (in particular tax) regulations.
TLS encryption with https
We use https to transmit data securely over the Internet (data protection through technology design Article 25 Paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission over the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small lock symbol at the top left of the browser and the use of the https scheme (instead of http) as part of our Internet address.
Data security, sessions and cookies
All data on our website is protected against loss, destruction, access, alteration and distribution by technical and organizational measures. To operate the website, we use cookies or server-side sessions in which data can be stored. We only use cookies or server-side sessions that are technically necessary for the operation of this website (e.g. spam protection for contact forms, shopping cart function) and where the assessment shows that there are no overriding interests on your part (Art. 6 I S. 1 f GDPR).
Social media links
We have our own social media pages for the third-party providers that can be reached via links from this website. Using the links takes you to the respective websites of the third-party providers (e.g. Facebook, YouTube). To avoid unnecessary data transfer, we recommend logging out of the respective third-party provider before using a corresponding link, so that user profiles cannot be created by the third-party provider simply by using the link.
Contacting us
If you would like to contact us regarding data protection, please use the contact options below. Responsible in terms of the GDPR:
Fair Art Team
Schravelener Niersweg 5
47626 Kevelaer
Fax: +49 (0) 2832 - 5089010
Mobile: +49 (0) 172 - 2633370
E-mail:
Google Fonts
This site uses so-called Google Fonts, which are provided by Google, for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers. Further information on Google Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://policies.google.com/privacy?hl=de.
Google Maps
This site uses the Google Maps map service. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and saved there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google can use Google Fonts for the purpose of uniformly displaying the fonts. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. Google Maps is used in the interest of an attractive presentation of our online offers and to make the locations we specify on the website easy to find. This represents a legitimate interest within the meaning of Art. 6 (1) (f) GDPR. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR and Section 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time. The data transfer to the USA is based on the standard contractual clauses of the EU Commission.
Security notice
We endeavor to store your personal data by taking all technical and organizational options so that it is not accessible to third parties. When communicating by email, we cannot guarantee complete data security, so we recommend that you send confidential information by (secure) post.
Hosting
This website is hosted externally. The personal data collected on this website is stored on the servers of the hoster(s). This can include, in particular, IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website. External hosting is carried out for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 Para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 Para. 1 lit. f GDPR). If a corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and Section 25 Para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time. Our host(s) will only process your data to the extent necessary to fulfill their service obligations and follow our instructions with regard to this data. We have concluded a contract for order processing (AVV) with the above-mentioned provider. This is a contract required by data protection law that guarantees that they only process the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.
User inquiries
In order to be able to process and answer your inquiries to us, e.g. via forms or to our email address, we process the personal data you provide in this context. This always includes your name and email address in order to send you an answer, as well as any other information you send us as part of your message. We process your personal data to answer user inquiries on the basis of the following legal bases: To protect our legitimate interests in accordance with Art. 6 Para. 1 lit. f GDPR; Our legitimate interest lies in answering customer inquiries appropriately.
Compliance with legal regulations
We also process your personal data in order to fulfill other legal obligations that apply to us in connection with the processing of the order. This includes in particular retention periods under commercial, business or tax law. We process your personal data on the basis of the following legal bases: To fulfill a legal obligation to which we are subject in accordance with Art. 6 Paragraph 1 Letter c GDPR in connection with commercial, business or tax law, insofar as we are obliged to record and store your data.
Legal enforcement
We also process your personal data in order to be able to assert our rights and enforce our legal claims. We also process your personal data in order to be able to defend ourselves against legal claims. Finally, we process your personal data insofar as this is necessary to prevent or prosecute criminal offenses. We process your personal data for this purpose on the basis of the following legal bases: To protect our legitimate interests in accordance with Art. 6 (1) (f) GDPR, insofar as we assert legal claims or defend ourselves in legal disputes or we prevent or investigate criminal offenses.
Categories of recipients
Initially, only we will receive your personal data. In addition, we will share your personal data, where permitted or required by law, with other recipients who provide services for us in connection with our website. We limit the sharing of your personal data to what is necessary. In some cases, our service providers receive your personal data as data processors and are then strictly bound by our instructions when handling your personal data. In some cases, the recipients act independently with the data that we transmit to them. Below we list the categories of recipients of your personal data: IT service providers for the administration and hosting of our website.
Changes
We reserve the right to change this privacy policy at any time. Any changes will be announced by publishing the amended privacy policy on our website. Unless otherwise specified, such changes will take effect immediately. Please therefore check this privacy policy regularly to see the current version.